2 Replies Latest reply: May 14, 2013 1:51 PM by 1008665 RSS

    Oracle Apex with Oracle HTTP server authenticate via Active Directory

    1008665
      Hi,

      I am trying to setup Oracle APEX with Oracle HTTP server (11g) as the web server. And the Oracle HTTP server is to authenticate with Active Directory first before the user can access the Oracle APEX application.
      I am aware that Oracle APEX itself provide LDAP authentication. However, due to company policy, I need to authenticate the Oracle HTTP server with AD first.

      Has anyone configure similar setup before? is it possible?

      Thank you.
        • 1. Re: Oracle Apex with Oracle HTTP server authenticate via Active Directory
          Denes Kubicek
          1. Create an authentication application which has only a login page and a list of your applications (page 1 - after login)

          2. Use AD Authentication for that application

          3. In the Authentication Schema set the same SSO Cookie for all applications - name the cookie as you want

          4. In the Authentication Scheme of each application set the Session Not Valid to URL and use the URL of your central application (e.g. Application ID 100) :

          f?p=100:101:&SESSION

          That should work for you and all the users would be forced to authenticate first. This will not work for public pages so you have to make all of your pages to require authentication.

          Denes Kubicek
          -------------------------------------------------------------------
          http://deneskubicek.blogspot.com/
          http://www.apress.com/9781430235125
          http://apex.oracle.com/pls/apex/f?p=31517:1
          http://www.amazon.de/Oracle-APEX-XE-Praxis/dp/3826655494
          -------------------------------------------------------------------
          • 2. Re: Oracle Apex with Oracle HTTP server authenticate via Active Directory
            1008665
            Hi Denes,

            Thank you for replying my post.

            Your solution is useful when the oracle database is able to access AD.

            However, my constraint is that the web server (Oracle HTTP Server) is able to access AD, not the database.

            Can I develop login page in jsp to authenticate with AD ? After successful authenticated, the user can access Apex applications.
            the Apex application will not need to provide the login page and is able to retrieve the login name of the user.

            Thank you.